| Age | Commit message (Expand) | Author |
|---|
| 2020-07-24 | Use interface index instead of pointer to `ifnet' in carp(4). | mvs |
| 2020-06-24 | kernel: use gettime(9)/getuptime(9) in lieu of time_second(9)/time_uptime(9) | cheloha |
| 2020-06-17 | make ph_flowid in mbufs 16bits by storing whether it's set in csum_flags. | David Gwynne |
| 2019-11-17 | "set delay" never worked as committed: the delay field was not copied | Otto Moerbeek |
| 2019-10-17 | Use -1 to indicate an invalid uid/gid, not UID_MAX and GID_MAX. | Todd C. Miller |
| 2019-08-29 | pf_state_insert() must grab state lock exclusively | Alexandr Nedvedicky |
| 2019-08-26 | pf.conf "set timeout interval 1" causes kernel crash | Alexandr Nedvedicky |
| 2019-07-18 | follow up to 'once rule' expiration | Alexandr Nedvedicky |
| 2019-07-18 | This commit fixes two bugs involving PF once rules: | Lawrence Teo |
| 2019-07-11 | fix NULL pointer dereference, reported and fix tested by sthen | Alexandr Nedvedicky |
| 2019-07-09 | Fix previous commit which made src-node have a reference for the kif. | YASUOKA Masahiko |
| 2019-07-02 | When source address tracking record is used for "route-to", the next | YASUOKA Masahiko |
| 2019-07-01 | Link the state and the source track to keep the source track while | YASUOKA Masahiko |
| 2019-03-20 | States in pf(4) let ICMP and ICMP6 packets pass if they have a | Alexander Bluhm |
| 2018-12-17 | Use timeout_add_sec() instead of timeout_add() with a multiplication with hz | Claudio Jeker |
| 2018-12-10 | Remove useless macros | kn |
| 2018-11-15 | in the "pf: key search" debug message, add the direction. interface *and* | Henning Brauer |
| 2018-10-16 | - pf: honor quick on anchor rules | Alexandr Nedvedicky |
| 2018-10-04 | Honor quick on anchor rules | kn |
| 2018-09-13 | Add reference counting for inet pcb, this will be needed when we | Alexander Bluhm |
| 2018-09-11 | - moving state look up outside of PF_LOCK() | Alexandr Nedvedicky |
| 2018-07-22 | Fix arguments of pf_purge_expired_{src_nodes,rules}() | Stefan Fritsch |
| 2018-07-12 | trade few 'goto unlock: for 'break' in pf_test() | Alexandr Nedvedicky |
| 2018-07-11 | the STATE_LOOKUP macro made sense ages ago. It stopped making sense | Henning Brauer |
| 2018-07-10 | in pf_set_protostate(), only decrement the half-open states counter when | Henning Brauer |
| 2018-07-10 | provide a generic packet delay functionality. packets to be delayed are marked | Henning Brauer |
| 2018-06-18 | Refactor the six ways to find TCP options into one new function. As a result: | Richard Procter |
| 2018-06-04 | The function pf_create_state() calls pf_set_protostate() before | Alexander Bluhm |
| 2018-06-01 | While sending the pf syncookie, we are holding the pf lock. So | Alexander Bluhm |
| 2018-05-10 | pf route-to should not send packets from 127.0.0.1 or ::1 address | Alexander Bluhm |
| 2018-04-06 | All users of the PFLOG_PACKET() macro are inside "#if NPFLOG > 0". | Alexander Bluhm |
| 2018-03-06 | If source and destination addresses are equal, the incoming and | Alexander Bluhm |
| 2018-02-27 | make kernel compile again without INET6 | Sebastian Benoit |
| 2018-02-18 | - regression in pflog output | Alexandr Nedvedicky |
| 2018-02-06 | syncookies for pf. | Henning Brauer |
| 2018-02-06 | some finger muscle workout: | Henning Brauer |
| 2018-01-19 | Use the pf state key linking functions in two more places instead | Alexander Bluhm |
| 2018-01-16 | If pf route-to is used for locally generated packets, they may have | Alexander Bluhm |
| 2018-01-15 | When pf(4) forwards incoming packets with route-to or reply-to, | Alexander Bluhm |
| 2018-01-10 | Use pf_send_icmp() consistently in pf_route(). It sets the routing | Alexander Bluhm |
| 2017-12-29 | Make sure that pf_mbuf_link_state_key() does not overwrite an | Alexander Bluhm |
| 2017-12-29 | Make the functions which link the pf state keys to mbufs, inpcbs, | Alexander Bluhm |
| 2017-12-28 | pf drops IPv4 packets with any options by default. For IPv6 the | Alexander Bluhm |
| 2017-12-24 | There was a corner case where linking the inp to the state key did | Alexander Bluhm |
| 2017-12-04 | RFC 4861 requires that all neighbor discovery packets have 255 in | Alexander Bluhm |
| 2017-12-01 | Simplify the reverse PCB lookup logic. The PF_TAG_TRANSLATE_LOCALHOST | Alexander Bluhm |
| 2017-11-28 | The divert structure was using the port number to indicate that | Alexander Bluhm |
| 2017-11-22 | It does not make sense to call pcb lookup from pf during packet | Alexander Bluhm |
| 2017-11-20 | Sprinkle some NET_ASSERT_LOCKED(), const and co to prepare running | Martin Pieuchot |
| 2017-11-13 | add a generic packet rate matching filter. allows things like | Henning Brauer |
